• IPSec site-to-site with login/password authentication

    Alysko
    Alysko
    Hi, I'm trying to set up an IPSec VPN on a Sophos XG to connect as site-to-site to an internet box that serves as a IPSec (IKEv2) VPN server. When configuring a new VPN user, the box only gives username/password and VPN server address. Is it possible…
    • Answered
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • Sophos Firewall: Policy-Based IPsec with Oracle Cloud Infrastructure(OCI)

    GiuseppeI
    GiuseppeI
    Disclaimer : This information is provided as-is for the benefit of the Community. Please contact Sophos Professional Services if you require assistance with your specific environment. Note: The following KB is an updated version of the Sophos Firewall…
    • 7 months ago
    • Sophos Firewall
    • Recommended Reads
  • XGS IPSec S2S Azure and isolating a shared MAC Mini with SSL VPN Contractor

    WABGOR_DAVE
    WABGOR_DAVE
    Hello all, Network (kinda) and XGS newb is back with another question. I'm pretty sure the answer is going to be a "yes/no and you're just missing this little step to get it done". I've included a summarizing picture. Presently working: We have an…
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • Possible bug: Issue in site to site VPN ipsec changing WAN interface

    eclipse79
    eclipse79
    Hello, I have an issue with site to site vpn IPSec. I suppose it is a bug. Scenario: You have 1 WAN port (port 2) You have some created site to site VPN IPSEC (initiate the connection type) Follow these steps to reproduce the issue: - Configure…
    • Answered
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • Multicast Forwarding issues

    Randy Cleveland
    Randy Cleveland
    We have recently set up Multicast forwarding between our main office and a remote location via a site-to-site vpn. The Multicast forwarding is working from the remote location back to the main office, however, the system we need to multicast in the…
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • Multicast Traffic Forwarding over IPSec vpn

    Randy Cleveland
    Randy Cleveland
    We are trying to forward multicast traffic for 239.1.1.2 between our Main Site to one of our remote sites via a Site-to-Site IPSec VPN connection. I have following the instructions here: https://support.sophos.com/support/s/article/KB-000038580?language…
    • Answered
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • IPSec tunnel interface for same interface WAN and remote adress 0.0.0.0

    Guilherme Silva1
    Guilherme Silva1
    Hello, Is there a way to configure a VPN tunnel interface scenario, using the same WAN interface to receive the connection from remote points? In this case, I have only 1 internet link on site A with a fixed IP, and I have several remote branches…
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • IPSEC XG Failover

    admin_idl
    admin_idl
    Hello, We have set up an IPSEC connection and want to set up a failover. We have checked the connection of the backup IPSEC connection and the tunnel could also be established. However, if we use the IPSEC connection in a failover group as backup IPSEC…
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • NOT RECEIVING THE INCOMING TRAFFIC FROM VPN TUNNEL

    Jackson Awe
    Jackson Awe
    Hello guys, I really need your help i am facing the challenge since am not receiving the traffic from remote machine i have attached the captured traffic and denied logs from the specific machine....i can reach the remote machine by ping and telnet…
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • LLMNR disabled

    Leo März
    Leo März
    Hello, regarding to this post: LLMNR disabled - DNS resolution no longer works over VPN when will version 2.3 of sophos connect be published? kind regards
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • IPSec to Azure

    Chris Wood
    Chris Wood
    Hello! We are an MSP with about 20 clients that have servers hosted in Azure. These 20 clients have various hardware models of Sophos XG and XGS firewalls with various steps of firmware from 19.5.3 to 20.0.22. Those firewalls have an IPSec site to site…
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • Can't access Admin GUI unless I SSH first

    Rich Grodzicki
    Rich Grodzicki
    I have two home deployments of Sophos Firewall v20, one at home and one at a family vacation home. I've set up VPN, routes, and rules between without issue. But the strangest issue that I can't seem to resolve is that with the vacation home the Admin…
    • Answered
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • IPSec Site-to-Site VPN Local Subnet Becomes Unreachable due to Inactivity

    EdgeFour
    EdgeFour
    Hello, I'm experiencing the exactly same problem as the guy in this (sadly locked) thread: IPSec Site-to-Site VPN Local Subnet Becomes Unreachable due to Inactivity As the thread ends with him contacting the support and no real solution, I was…
    • Answered
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • Site-to-Site VPN Issues

    Alan Spark
    Alan Spark
    I am testing a new XGS 136 (SFOS 20.0.0 GA-Build222) offsite to replace an onsite XG 135 ( SFOS 19.0.2 MR-2-Build472). The backup of the XG 135 was used to setup the XGS 136. We have never used the IPsec Site-to-Site connection before but may have a…
    • Answered
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • SNAT over IPSec XGS107-XG135

    Dimitris Roubos
    Dimitris Roubos
    Hello there, I have 2 Sophos Firewall connecting to Networks with IPSeC Site-to-Site VPN 1 Public IP for each network. XGS107 ( SFOS 19.5.3 MR-3-Build652) XG135 ( SFOS 18.5.2 MR-2-Build380) Network A 192.168.1.0/24 IPSeC gateway 172.16.21…
    • Answered
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • Side to Side VPN zwischen Fritzbox und Sophos hinter einer Fritzbox

    Dennis Marschall
    Dennis Marschall
    Hallo zusammen, ich habe ein Problem beim Aufbau der Side to Side VPN Verbindung (IPsec) zwischen einer Fritzbox und meiner Sophos, welche hinter einer Fritzbox hängt. Der Aufbau sieht folgendermaßen aus: Beide Fritzboxen nutzen DDNS Dienste, da…
    • Answered
    • 8 months ago
    • Sophos Firewall
    • German Forum
  • VPN SITE TO SITE

    Patricio Gómez
    Patricio Gómez
    HELLO GOOD AFTERNOON DO YOU KNOW WHY THE VPN CANNOT CONNECT AND I AM CHECKING THE RULE BUT THERE IS TRAFFIC AND THIS IS THE RULE
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • Porblem xgs ipsec

    piddae
    piddae
    Hallo liebe communitytäter, Ich habe ene Frage zum IPSEC: Folgende Konfiguration: UTM direkt am Internet XGS hinter einer NAT normales DSL. Wenn auf der XGS die IP wechselt kein Problem die Verbindung bleibt bestehen. UTM Initiator XGS Responder…
    • Answered
    • 8 months ago
    • Sophos Firewall
    • German Forum
  • VPN IPsec site to site between Sophos and Seqrite UTM

    Sunit Thakur
    Sunit Thakur
    I have created VPN IP Sec between Sophos xg136 and Seqrite Terminator UTM after some time vpn auto disconnted and send below log error. And manually have to conect. Couldn't parse IKE message from 47.X.X.X[38049]. Check the debug logs. Traffic…
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • Sophos Home to replace Arista Home Pro

    James Pifer
    James Pifer
    Hello. I'm looking at replacing my current Arista Home Pro with Sophos Home. A couple important features I use are TunnelVPN and Bypass. Can Sophos do a site-to-site vpn to Torguard ? Can you control access through the VPN by rules, ie source address…
    • 9 months ago
    • Sophos Firewall
    • Discussions
  • branch office VPN on brand new firewall

    Petr Odvarka1
    Petr Odvarka1
    Hello, this is not question. Just one experience which surprised me. I got new firewall for customer which used XG platform. Made migration of configuration and due to terms of old licence I was in hurry with implementation. I noticed that new firewall…
    • 9 months ago
    • Sophos Firewall
    • Discussions
  • SNMP monitoring IPsec and vpn Tunnel traffic

    SETRA ANDRIAMPARAMALALA
    SETRA ANDRIAMPARAMALALA
    Is there any way to use SNMP to monitor traffic flow through an IPsec tunnel? I'm successfully capturing port traffic with SNMP but would also like to capture the traffic between our two sites via an IPsec tunnel.
    • Answered
    • 9 months ago
    • Sophos Firewall
    • Discussions
  • help to configurate IPSec VPN sophos xgs136

    Davide Filippi
    Davide Filippi
    Hello everyone, I need help setting up an IPsec VPN. My provider gave me these parameters: Remote Gateway: <public address A> Subnet: <range of public addresses B> Phase1 and Phase2 parameters that I know it have to match Firewall XGS136 I…
    • 9 months ago
    • Sophos Firewall
    • Discussions
  • Site-to-Site VPN Problem Invalid SPI

    Trio Fandi
    Trio Fandi
    Hi, We are using Sophos Firewall XG310 , SFOS v20. It's been 4 month we have established Site-to-Site VPN, and today suddenly our connection is Down with many " Received IKE message with invalid SPI (D3EED417) from the remote gateway " log messages…
    • Answered
    • 9 months ago
    • Sophos Firewall
    • Discussions
  • SNAT over ipsec not working XGS2100

    Akshay Hegde
    Akshay Hegde
    I am referring this post with similar issue DNS request to DNS over Site2Site VPN I have below setup XG310 -- branch office XG430 -HA -- Head office Now I got XGS2100 - 2nd branch office ( Gateway local ip: 172.16.1.100 ) XGS2100 …
    • Answered
    • 9 months ago
    • Sophos Firewall
    • Discussions
  • View related content from anywhere
  • More
  • Cancel
<>